14 matches found
EUVD-2008-5795
Malware in sbrugna...
EUVD-2008-5796
Malware in sbrugna...
EUVD-2008-5797
Malware in sbrugna...
CVE-2008-5825
The SmartPoster implementation on the Nokia 6131 Near Field Communication NFC phone with 05.12 firmware does not properly display the URI record when the Title record contains a certain combination of space, CR aka \r, and . dot characters, which allows remote attackers to trick a user into loadi...
CVE-2008-5826
The Nokia 6131 Near Field Communication NFC phone with 05.12 firmware allows remote attackers to cause a denial of service device crash via 1 a large value in the payload length field in an NDEF record, or a certain length for a 2 tel: or 3 sms: NDEF URI...
Design/Logic Flaw
The SmartPoster implementation on the Nokia 6131 Near Field Communication NFC phone with 05.12 firmware does not properly display the URI record when the Title record contains a certain combination of space, CR aka \r, and . dot characters, which allows remote attackers to trick a user into loadi...
CVE-2008-5825
The SmartPoster implementation on the Nokia 6131 Near Field Communication NFC phone with 05.12 firmware does not properly display the URI record when the Title record contains a certain combination of space, CR aka \r, and . dot characters, which allows remote attackers to trick a user into loadi...
CVE-2008-5826
The Nokia 6131 Near Field Communication NFC phone with 05.12 firmware allows remote attackers to cause a denial of service device crash via 1 a large value in the payload length field in an NDEF record, or a certain length for a 2 tel: or 3 sms: NDEF URI...
CVE-2008-5827
The CVE describes a vulnerability in the Nokia 6131 NFC phone (firmware 05.12) where the device automatically installs software after downloading a JAR file. This behavior can enable remote code execution via a crafted URI record in an NDEF tag, potentially allowing an attacker to run arbitrary c...
CVE-2008-5825
The CVE-2008-5825 entry concerns the Nokia 6131 NFC phone (firmware 05.12) SmartPoster handling. A bug in displaying the URI record occurs when the Title record contains a specific mix of spaces, carriage returns, and dots, allowing a crafted NDEF tag to trick a user into loading an arbitrary URI...
CVE-2008-5827
The Nokia 6131 Near Field Communication NFC phone with 05.12 firmware automatically installs software upon completing the download of a JAR file, which makes it easier for remote attackers to execute arbitrary code via a crafted URI record in an NDEF tag...
Nokia 6131存在多个漏洞
BUGTRAQ ID: 30716 CNCAN ID:CNCAN-2008081804 Nokia 6131是一款支持近距离通信NFC的手机设备。 Nokia 6131设备存在URL欺骗和拒绝服务攻击,远程攻击者可以利用漏洞使设备崩溃,造成拒绝服务攻击。 当显示NDEF Smart Poster和明文URI标签的内容时存在URI/URL欺骗,当装载WEB页时浏览器不正确显示完全的主机名。 NDEF记录解析器在处理包含0xFFFFFFFF或0xFFFFFFFE的记录负载长度字段时会导致崩溃。 当电话号码超过124个字符时,SMS和TEL URI处理器会崩溃。 Nokia 6131...
nokia-spoof.txt
Vulnerability Report --- BEGIN ADVISORY --- Manufacturer: Nokia www.nokia.com Device: Nokia 6131 NFC Firmware: V 05.12, 19-09-07, RM-216 Device Type: mobile phone OS: Symbian Series40 Subsystem: Near Field Communication ----------------------------- Executive Summary: URI/URL Spoofing when...
Nokia 6131 phones multiple security vulnerabilities
URI spoofing, device crash...